by Eric Krell | December 20, 2021 | Corporate Culture
All risk managers want for Christmas from the environmental, social, and governance (ESG) metrics they work with is standardization. And accuracy. A single repository of shared ESG data also would be nice. While we’re at it, regulatory clarity and harmonization between Generally Accepted Accountin ....
by Eric Krell | December 19, 2021 | Tools & Templates
When it comes to behind-the-scenes work that requires a rare combination of hard-earned experience, deep expertise, and a killer toolset, Santa has his elves. For its part, Shared Assessments has a workshop full of seasoned third party risk management (TPRM) experts who continually track and respond ....
by Vivian Nguyen | December 17, 2021 | Third Party Risk Management
Ahhhh, winter break….maybe you are cozied up at home with some time on your hands. Or, perhaps you have been left behind at the ski lodge. Here or there, how about taking in some riveting Risk Management literature and video? Our top five most-read studies and papers in 2021 have been: C-S ....
by Tom Garrubba | December 16, 2021 | Data & Cybersecurity
Here we go again: another holiday season, another exploit. It appears many IT, risk, and security professionals are going to have to wait to down their favorite holiday cheer as another exploit has brought tumult to the community. A Log4j vulnerability has bubbled to the surface – a hint of ....
by Christopher Campbell, Colleen Milazzo | December 15, 2021 | Standardized Control Assessment (SCA), Tools & Templates
December seems to be a month fixated on fancy footwear. On Christmas Eve, some of us will “hang stockings by the chimney with care.” On December 4, a few of us celebrated the fringe awareness event “National Sock Day” commemorating “those rarest of socks that manage to stick together.” ....
by Sabine Zimmer | December 14, 2021 | Third Party Risk Management
Gift-giving is an ancient tradition that has helped “maintain friendly relations between groups of people by building bonds of trust between them” throughout history. From Neolithic times to now, gifts have been exchanged to families, communities, organizations as tokens of connection. In the ....
by Nasser Fattah | December 13, 2021 | Cybersecurity
It should be the season of good cheer, but the rise in shopping this time of year brings with it a rise in scams. It’s harder to be cheerful when you realize that great deal you thought you were so lucky to find was actually just a ploy to get your credit card information. Continue reading for bes ....
by Ron Bradley | December 10, 2021 | Data & Cybersecurity
Cybersecurity firm Salt Labs recently discovered a “GraphQL API authorization vulnerability” in a large B2B financial technology platform. This vulnerability would give attackers ways to submit unauthorized transactions against customer accounts, harvest sensitive data and initiate unauthorized ....
by Nasser Fattah | December 10, 2021 | Cyberattacks, Data & Cybersecurity
Since its founding in 1871 as a one-man business transporting goods by horse-drawn cart, Hellman Worldwide Logistics has grown into one of the largest international logistics providers. With high-performance offerings in the Airfreight, Seafreight, Road & Rail, and Contract Logist ....
by Ron Bradley | December 8, 2021 | Business Continuity
“We’ve got a problem. Keep calm. We’re running as fast as we can…” Nordic Choice Hotels Group sent this message in an email to program members after its IT systems were hit by the Conti ransomware group on the evening of December 2. Nordic Choice Hotels is one of the biggest hosp ....
